- Senator Mark Warner testified that the NSA confirmed that Mythos Preview identified vulnerabilities in nearly all classified systems within hours during a controlled exercise.
- US officials clarified that Mythos found flaws quickly rather than exploiting them, but the capability still raises major concerns.
- Public post retained by Anthropic, shared only with select companies; Mozilla and others validated its power, with thousands of critical bugs discovered in weeks
We now have another witness who claims that Mythos Preview is capable of rapidly entering protected systems and this is none other than a high-ranking member of the US government.
According to the Associated Press, Senator Mark Warner of Virginia testified before a congressional hearing this month and said that National Security Agency (NSA) chief Joshua Rudd informed him that Mythos “broke into nearly all of our classified systems, not in weeks, but in hours.”
It is worth mentioning here that the raid was controlled, as it was part of an exercise carried out by the Anthropic team and the intelligence agency.
How powerful is Mythos?
The Associated Press dug deeper and was told by an unnamed U.S. official that Mythos simply found vulnerabilities within hours, not necessarily exploited them. Still, identifying a vulnerability that could theoretically be exploited for attacks against protected US government systems should be cause for concern in itself.
Mythos is an advanced AI model created by Anthropic, first introduced in early April of this year. However, the company decided not to share it with the general public because it was apparently too capable of discovering and exploiting software vulnerabilities.
Instead, Anthropic shared it with a handful of major corporations to help them secure their systems before cybercriminals can use the tool. Since then, several companies have come forward to confirm the power of Mythos, including Mozilla, which said the tool was “as capable” as the world’s top security researchers.
Mozilla said that with the help of Mythos, it was able to submit more than 400 Firefox security bugs in April alone.
A month later, Anthropic said the 50 companies using the tool discovered more than 10,000 high-level and critical security vulnerabilities in about two months.
“Several have told us that their error detection rate has increased more than tenfold,” the company said. “For example, Cloudflare has found 2,000 bugs (400 of which are high severity or critical) in its critical path systems, with a false positive rate that the Cloudflare team considers better than that of human testers.”
Through PakGazette
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds.
